Open the CloudTrail service console.
Click on Trails in the navigation menu on the left.
Click on the Create Trail button, to create a trail for this lab.
Apply the following settings and create the trail
S3 bucket: security-workshop-(today’s date)-(yourmobilenumber)- Example: security-workshop-10062020-123456789.
Note down your bucket name as you will need it when deploying lab resources later.
We are using mobile phone number at the end to ensure that we create a unique bucket per user. For more information on Bucket Restrictions and Limitations click here
Congratulations! You have now created a CloudTrail trail and added a CloudWatch log for the API activity in your AWS Account.
AWS Config provides a detailed view of the configuration of AWS resources in your AWS account. This includes how the resources are related to one another and how they were configured in the past so that you can see how the configurations and relationships change over time.
Congratulations! AWS Config is now turned on in your account and is tracking configuration history.
On the Create stack page leave all settings on their defaults and click on the Next button at the bottom right of the console.
In the Parameters section:
Click on the Next button to continue.
On the Configure stack options screen click on the Next button to continue.
On the Review screen scroll to the bottom. Tick the box next to I acknowledge that AWS CloudFormation might create IAM resources, then click on the Create stack button:
Wait for the stack to deploy. This will typically take up to five minutes to complete.
The AWS Config Lab environment has now been created. Please now move on to Part 7 of the lab.
This video has no audio